class UsersController < ApplicationController
  # GET /users
  # GET /users.xml

  def login
    if params[:email].nil? || params[:password].nil?
      @user = User.new
    else
      user = User.where(:email => params[:email], :password => params[:password])
      if user.length > 0
        @user = user.first
        params[:debug] = @user
        session[:user_id] = @user.id
      else
        flash[:error] = "Bad email/password"
      end
    end
  end

  def recover

  end

  def index
    @users = User.all

    respond_to do |format|
      format.html # index.html.erb
      format.xml  { render :xml => @users }
    end
  end

  def showname

    @user = User.find_by_username(params[:name])

  end

  # GET /users/1
  # GET /users/1.xml
  def show

    @user = User.find(params[:id])
    redirect_to :action => "showname", :name => @user.username

  end

  # GET /users/new
  # GET /users/new.xml
  def new
    @user = User.new

    respond_to do |format|
      format.html # new.html.erb
      format.xml  { render :xml => @user }
    end
  end

  # GET /users/1/edit
  def edit
    @user = User.find(params[:id])
  end

  # POST /users
  # POST /users.xml
  def create
    @user = User.new(params[:user])
    @user.password_confirmation = params[:user][:password]
    @user.password = params[:user][:password]
    @user.password = Digest::SHA1.hexdigest(params[:user][:password]) if @user.password.length > 6

    respond_to do |format|
      if @user.save
        format.html { redirect_to(:action => "showname" , :name => @user.username) }
        format.xml  { render :xml => @user, :status => :created, :location => @user }
      else
        @user.password = @user.password_confirmation
        format.html { render :action => "new" }
        format.xml  { render :xml => @user.errors, :status => :unprocessable_entity }
      end
    end
  end

  # PUT /users/1
  # PUT /users/1.xml
  def update
    @user = User.find(params[:id])

    respond_to do |format|
      if @user.update_attributes(params[:user])
        format.html { redirect_to(@user, :notice => 'User was successfully updated.') }
        format.xml  { head :ok }
      else
        format.html { render :action => "edit" }
        format.xml  { render :xml => @user.errors, :status => :unprocessable_entity }
      end
    end
  end

  # DELETE /users/1
  # DELETE /users/1.xml
  def destroy
    @user = User.find(params[:id])
    @user.destroy

    respond_to do |format|
      format.html { redirect_to(users_url) }
      format.xml  { head :ok }
    end
  end
end
